Published Nov 11, 2009|Updated Sep 15, 2017


Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: Rootkit-Pakes.Q (AVG) Rootkit.27206 (BitDefender) Backdoor.WinNT.Festi (Ikarus) Rootkit.Win32.Tent.iw (Kaspersky) Rootkit.AWLO (Norman) Hacktool.Rootkit (Symantec) Mal_Neb-2 (Trend Micro) Rootkit.Festi.A (VirusBuster)

Backdoor:WinNT/Festi.A is a backdoor trojan that allows limited remote access and control. It retrieves instructions and commands from a remote attacker by connecting to a remote website and downloading data. The commands could instruct WinNT/Festi.A to distribute spam.


Latest news